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IN THE CLAIMS 

For the convenience of the Examiner, all claims have been presented whether or not 
an amendment has been made. 

1 . (Previously Presented) A method for authenticating and authorizing a user of 
an electronic device in communication with a network, comprising: 

receiving a user request from a user of an electronic device in communication with a 
network; 

searching for information relating to said user in a repository of user information, said 
searching based at least partially on said user request and a login identity supplied by said 
user; 

retrieving, from the repository of user information, a unique universal user identifier 
representing said user upon locating said information of said user; 

storing at least said unique universal user identifier in a data packet; 

sending said data packet to a storage device such that said data packet is transmittable 
to electronic devices in communication with said network when said user attempts to access a 
resource within said network; and 

retrieving an authorization datum associated with said user, based at least partially on 
said unique universal user identifier, from said resource. 

2. (Previously Presented) The method of claim 1, wherein receiving a user 
request comprises receiving a login name from said user. 

3. (Previously Presented) The method of claim 1, further comprising: 
registering said user with said network; 

generating said unique universal user identifier relating to said user; 

inserting said unique universal user identifier in said repository of user information; 

and 

populating a plurality of repositories containing authorization data with said user 



identifier. 



DAL01:895282.1 



ATTORNEY DOCKET NO. 
063170.6963 



PATENT APPLICATION 
Serial No. 09/972,226 



3 

4. (Previously Presented) The method of claim 1, further comprising receiving 
a security identity from said user. 

5. (Previously Presented) The method of claim 1, further comprising receiving 
a digital certificate from said user. 

6. (Previously Presented) The method of claim 1, further comprising indicating 
a result to said user regarding permitted access to said network. 

7. (Previously Presented) The method of claim 1, further comprising requesting 
a user credential of said user. 

8. (Previously Presented) The method of claim 1, wherein sending said data 
packet to a storage device comprises sending said data packet to a user electronic device 
supporting said storage device. 

9. (Previously Presented) The method of claim 1, further comprising storing 
information in addition to said unique universal user identifier in said data packet. 

10. (Previously Presented) The method of claim 1, wherein sending said data 
packet to a storage device comprises transmitting a cookie to said user electronic device 
enabling an identity of said user to be automatically recognized when said cookie is 
transmitted to said resource within said network. 

11. (Previously Presented) The method of claim 1, further comprising encrypting 
said data packet. 
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12. (Previously Presented) A method for accessing a plurality of resources 
having different authorization requirements, comprising: 

accessing, via an electronic device, a network comprising a plurality of resources; 
providing identifying data to said network; 

retrieving, in response to the identifying data, a unique universal user identifier 
corresponding to said user from a repository of unique universal user identifiers; 

storing said unique universal user identifier on a storage device, said unique universal 
user identifier indicating said user is authenticated; and 

accessing one of said plurality of resources, wherein said unique universal user 
identifier is transmitted to said one of said plurality of resources to identify said user such that 
said user can access authorized resources without providing additional identifying 
information and said user is denied access to unauthorized resources. 

13. (Previously Presented) The method of claim 12, further comprising providing 
a key to retrieve an authorization datum associated with one of said plurality of unique 
universal user identifiers matching said unique universal user identifier from one of said 
plurality of resources. 

14. (Previously Presented) The method of claim 12, further comprising: 
registering said user with said network; 

generating said unique universal user identifier for said user; and 
inserting said unique universal user identifier in at least one of said plurality of unique 
universal user identifiers. 

15. (Previously Presented) The method of claim 12, wherein providing 
identifying data to said network comprises supplying at least one of a login name, a 
password, and a digital certificate. 

16. (Previously Presented) The method of claim 12, wherein providing 
identifying data to said network comprises providing user credentials. 
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17. (Previously Presented) The method of claim 12, wherein providing 
identifying data to said network comprises providing a digital certificate. 

18. (Previously Presented) A method for user authentication and authorization, 
comprising: 

accessing a repository containing a plurality of unique universal user identifiers, each 
of said unique universal user identifiers being unique to a user; 

retrieving one of said unique universal user identifiers from said repository, 

storing said unique universal user identifier in a data packet readable by an electronic 

device; 

transmitting said data packet to a storage device coupled to said electronic device; and 
making said data packet available to a resource configured within an enterprise 
network to authorize said user. 

19. (Previously Presented) The method of claim 18, wherein storing said unique 
universal user identifier comprises packaging said unique universal user identifier in a cookie 
suitable for storage on at least one of a user electronic device and a user proxy electronic 
device. 

20. (Previously Presented) The method of claim 19, further comprising 
employing a software program to access a network reading said storage device. 

21. (Previously Presented) The method of claim 19, further comprising 
employing a web browser to access a network reading said storage device. 

22. (Previously Presented) The method of claim 18, further comprising: 
delivering said data packet to said resource configured within said enterprise network; 
extracting said unique universal user identifier from said data packet; 

accessing a repository containing a plurality of user entitlement data; and 

retrieving a user-specific entitlement from said repository containing said plurality of 

user entitlement data using said unique universal user identifier to locate said user-specific 

entitlement. 
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23. (Previously Presented) A system for user authentication and authorization, 
comprising: 

a repository containing a plurality of unique universal user identifiers, each unique 
universal user identifier being unique to a user; 

a first software tool operable to receive user login information, access said repository, 
retrieve a unique universal user identifier relating to said user, and transmit said unique 
universal user identifier to an electronic storage device suitable for storing said unique 
universal user identifier in a data packet for transmission to resources within a network; and 

a second software tool suitable for receiving said data packet and locating 
authorization datum of said user. 

24. (Previously Presented) The system of claim 23, wherein said electronic 
storage device is readable by a software program suitable for accessing said network. 

25. (Previously Presented) The system of claim 24, wherein said software 
program is a web browser. 

26. (Previously Presented) The system of claim 23, wherein said electronic 
storage device is a resource configured within said network. 

27. (Previously Presented) The system of claim 23, further comprising a 
repository containing authorization data, said repository containing authorization data 
accessible using said unique universal user identifier as a key to retrieve a user-specific 
entitlement associated with said user. 
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28. (Previously Presented) A computer-readable medium encoded with logic 
operable, when executed on a computer processor, to perform the steps comprising: 

receiving a user request from a user of an electronic device; 

searching for a user credential corresponding to said user in an authentication 
database; 

locating said user credential in said authentication database; 

retrieving a unique universal user identifier representing said user upon locating said 
user credential; 

packaging said unique universal user identifier in a data packet; and 
transmitting said data packet to said electronic device such that said data packet is 
transmittable to electronic devices in communication with a network when said user attempts 
to access a resource within said network such that said user can access authorized resources 
without providing additional identifying information. 

29. (Previously Presented) The computer-readable medium of claim 28, further 
operable, when executed on a computer processor, to perform the steps comprising: 

transmitting said data packet to said resource within said network; 

accessing a repository containing a plurality of unique universal user identifiers using 
said packaged unique universal user identifier in a search operation; and 

retrieving a user-specific entitlement from said repository containing a plurality of 
unique universal user identifiers, said user-specific entitlement associated with said packaged 
unique universal identifier. 

30. (Previously Presented) The computer-readable medium of claim 28, further 
operable, when executed on a computer processor, to perform the step of requesting a user 
credential. 
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